Penetration Tester

Capital One

London, United Kingdom
Not specified; not specified; generous holiday ent...
Hybrid
Penetration testing of apis and web applications
Strong knowledge of owasp top 10
Proficiency with burpsuite and owasp zap
This role is responsible for performing sophisticated ethical hacking exercises to uncover vulnerabilities in Capital One's enterprise cyber environment

Job Summary

  • This role is responsible for performing sophisticated ethical hacking exercises to uncover vulnerabilities in Capital One's enterprise cyber environment.
  • The successful candidate will collaborate closely with developers to improve the Software Development Lifecycle and influence stakeholders on security remediation.
  • Employees benefit from a hybrid working model, career progression through Capital One University, and comprehensive perks including pension schemes and private medical insurance.

Matching Summary

This role is responsible for performing sophisticated ethical hacking exercises to uncover vulnerabilities in Capital One's enterprise cyber environment.

Salary

Not specified; Not specified; Generous holiday entitlement, pension scheme, bonus, private medical insurance

Skills & Requirements

Must-have

  • Penetration testing of APIs and web applications
  • Strong knowledge of OWASP Top 10
  • Proficiency with BurpSuite and OWASP Zap
  • Understanding of networking concepts and OS
  • Experience with threat modeling frameworks

Nice-to-have

  • Cloud security testing experience on AWS or Azure
  • Ability to code in Python, Bash, or C++
  • IoT device penetration testing experience
  • Offensive security tool development skills
  • Code review experience for applications

Key Requirements

  • Information security experience in red teaming or penetration testing
  • Bachelors Degree or equivalent certification (advantageous)
  • Certifications such as OSCP, OSCE, GPEN, GXPN, CRTO, or CREST (advantageous)

Work Rights

Not specified

Tailored Resume

Cover Letter